Returning 10 result(s) out of 559,294 in 0.029 second(s)

  • 122.155.164.151:5001 (tcp/http) - last seen on 2024-11-07 at 03:31:23 UTC

    • IP
      122.155.164.151
      Network
      122.155.160.0/19
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://122.155.164.151:5001/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      ASN
      AS9335
      Organization
      CAT Telecom Public Company Limited
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      a3768245d18923b85ff9fbd3823b817e
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      4481ddb7dc4c86ee57d53e06632d175b
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Thu, 07 Nov 2024 03:31:23 GMT
      Content-Type: text/html
      Content-Length: 264
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body bgcolor="white">
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:31:23.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "4481ddb7dc4c86ee57d53e06632d175b",
               "bodymmh3" : 1578429100,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : 277382730,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 409
         },
         "asn" : "AS9335",
         "city" : "Bangkok",
         "country" : "TH",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:31:23 GMT\r\nContent-Type: text/html\r\nContent-Length: 264\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body bgcolor=\"white\">\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "a3768245d18923b85ff9fbd3823b817e",
         "datammh3" : 227797036,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS9335",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "TH",
            "countryname" : "Thailand",
            "domain" : [
               "cat.net.th",
               "cattelecom.com"
            ],
            "isineu" : "false",
            "latitude" : "15.870032",
            "location" : "15.870032,100.992541",
            "longitude" : "100.992541",
            "netname" : "CAT-IDC2-Service",
            "organization" : "CAT Telecom Public Company Limited",
            "subnet" : "122.155.160.0/19"
         },
         "ip" : "122.155.164.151",
         "ipv6" : "false",
         "latitude" : "13.7063",
         "location" : "13.7063,100.4597",
         "longitude" : "100.4597",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "CAT Telecom Public Company Limited",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5001,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "122.155.160.0/19",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 27.46.125.156:5001 (tcp/http) - last seen on 2024-11-07 at 03:31:19 UTC

    • IP
      27.46.125.156
      Network
      27.46.0.0/17
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://27.46.125.156:5001/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      ASN
      AS17623
      Organization
      China Unicom Shenzen network
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Thu, 07 Nov 2024 03:31:19 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:31:19.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : -1017789546,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS17623",
         "city" : "Shenzhen",
         "country" : "CN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:31:19 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS17623",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "CN",
            "countryname" : "China",
            "domain" : [
               "chinaunicom.cn"
            ],
            "isineu" : "false",
            "latitude" : "35.86166",
            "location" : "35.86166,104.195397",
            "longitude" : "104.195397",
            "netname" : "UNICOM-GD",
            "organization" : "China Unicom Guangdong Province Network",
            "subnet" : "27.46.96.0/19"
         },
         "ip" : "27.46.125.156",
         "ipv6" : "false",
         "latitude" : "22.5559",
         "location" : "22.5559,114.0577",
         "longitude" : "114.0577",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "China Unicom Shenzen network",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5001,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "27.46.0.0/17",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 200.232.24.42:5001 (tcp/unknown) - last seen on 2024-11-07 at 03:31:00 UTC

    • IP
      200.232.24.42
      Network
      200.232.0.0/17
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      ASN
      AS10429
      Organization
      TELEFONICA BRASIL S.A
      Protocol
      unknown
      Source
      datascan
    • Operating System
      Microsoft Windows
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      bf8358d283c6749daa44432f357fb52f
    • \x02 @X000810040100052\x03
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:31:00.000Z",
         "app" : {
            "length" : 20
         },
         "asn" : "AS10429",
         "city" : "S\u00e3o Paulo",
         "country" : "BR",
         "data" : "\\x02 @X000810040100052\\x03",
         "datamd5" : "bf8358d283c6749daa44432f357fb52f",
         "datammh3" : 2138622679,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS10429",
            "continent" : "SA",
            "continentname" : "South America",
            "country" : "BR",
            "countryname" : "Brazil",
            "domain" : [
               "cert.br",
               "net.br",
               "telefonica.com"
            ],
            "isineu" : "false",
            "latitude" : "-14.235004",
            "location" : "-14.235004,-51.92528",
            "longitude" : "-51.92528",
            "netname" : "02.558.157/0001-62",
            "organization" : "TELEFONICA BRASIL S.A",
            "subnet" : "200.232.0.0/17"
         },
         "ip" : "200.232.24.42",
         "ipv6" : "false",
         "latitude" : "-23.6283",
         "location" : "-23.6283,-46.6409",
         "longitude" : "-46.6409",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "TELEFONICA BRASIL S.A",
         "os" : "Windows",
         "osvendor" : "Microsoft",
         "port" : 5001,
         "protocol" : "unknown",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "subnet" : "200.232.0.0/17",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 194.41.36.198:5001 (tcp/unknown) - last seen on 2024-11-07 at 03:30:58 UTC

    • IP
      194.41.36.198
      Network
      194.41.36.0/23
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      ASN
      AS133199
      Organization
      SonderCloud Limited
      Protocol
      unknown
      Source
      datascan
    • Operating System
      Microsoft Windows
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0801eea59e8d40dd16670664b207f986
    • \x05\x00\xff\xff\x81!\x01\x05\x00\xff\xff\x01\x00\x01
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:30:58.000Z",
         "app" : {
            "length" : 14
         },
         "asn" : "AS133199",
         "country" : "HK",
         "data" : "\\x05\\x00\\xff\\xff\\x81!\\x01\\x05\\x00\\xff\\xff\\x01\\x00\\x01",
         "datamd5" : "0801eea59e8d40dd16670664b207f986",
         "datammh3" : 314736437,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "ip" : "194.41.36.198",
         "ipv6" : "false",
         "latitude" : "22.2578",
         "location" : "22.2578,114.1657",
         "longitude" : "114.1657",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "SonderCloud Limited",
         "os" : "Windows",
         "osvendor" : "Microsoft",
         "port" : 5001,
         "protocol" : "unknown",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "subnet" : "194.41.36.0/23",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 116.209.24.227:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:54 UTC

    • IP
      116.209.24.227
      Network
      116.208.0.0/15
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://116.209.24.227:5001/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      ASN
      AS4134
      Organization
      Chinanet
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Thu, 07 Nov 2024 03:30:53 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:30:54.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : -409535541,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS4134",
         "country" : "CN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:30:53 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS4134",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "CN",
            "countryname" : "China",
            "domain" : [
               "189.cn",
               "chinatelecom.cn"
            ],
            "isineu" : "false",
            "latitude" : "35.86166",
            "location" : "35.86166,104.195397",
            "longitude" : "104.195397",
            "netname" : "CHINANET-HB",
            "organization" : "CHINANET Hubei province network",
            "subnet" : "116.208.0.0/15"
         },
         "ip" : "116.209.24.227",
         "ipv6" : "false",
         "latitude" : "34.7732",
         "location" : "34.7732,113.7220",
         "longitude" : "113.7220",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Chinanet",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5001,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "116.208.0.0/15",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 91.49.150.152:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:53 UTC

    • IP
      91.49.150.152
      Network
      91.48.0.0/13
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://91.49.150.152:5001/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      ASN
      AS3320
      Organization
      Deutsche Telekom AG
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Thu, 07 Nov 2024 03:30:53 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:30:53.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : -409535541,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS3320",
         "city" : "Heilbronn",
         "country" : "DE",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:30:53 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS3320",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "DE",
            "countryname" : "Germany",
            "domain" : [
               "t-ipconnect.de",
               "telekom.de"
            ],
            "isineu" : "true",
            "latitude" : "51.165691",
            "location" : "51.165691,10.451526",
            "longitude" : "10.451526",
            "netname" : "DTAG-DIAL23",
            "organization" : "Deutsche Telekom AG",
            "subnet" : "91.49.0.0/16"
         },
         "ip" : "91.49.150.152",
         "ipv6" : "false",
         "latitude" : "49.1408",
         "location" : "49.1408,9.2149",
         "longitude" : "9.2149",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Deutsche Telekom AG",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5001,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "91.48.0.0/13",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 180.165.133.22:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:53 UTC

    • IP
      180.165.133.22
      Network
      180.160.0.0/12
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://180.165.133.22:5001/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      ASN
      AS4812
      Organization
      China Telecom Group
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Thu, 07 Nov 2024 03:30:53 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:30:53.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : -409535541,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS4812",
         "city" : "Shanghai",
         "country" : "CN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:30:53 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS4812",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "CN",
            "countryname" : "China",
            "domain" : [
               "chinatelecom.cn"
            ],
            "isineu" : "false",
            "latitude" : "35.86166",
            "location" : "35.86166,104.195397",
            "longitude" : "104.195397",
            "netname" : "CHINANET-SH",
            "organization" : "CHINANET SHANGHAI PROVINCE NETWORK",
            "subnet" : "180.160.0.0/13"
         },
         "ip" : "180.165.133.22",
         "ipv6" : "false",
         "latitude" : "31.2222",
         "location" : "31.2222,121.4581",
         "longitude" : "121.4581",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "China Telecom Group",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5001,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "180.160.0.0/12",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 93.176.175.64:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:52 UTC

    • IP
      93.176.175.64
      Network
      93.176.128.0/18
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://93.176.175.64:5001/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      ASN
      AS15704
      Organization
      Xtra Telecom S.A.
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      52dd2a8da27f85010960b413cbcb06b2
      HTTP Header MD5
      8f57d0a690407837a6e100808c5990d8
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: puta_el_que_lo_lea
      Date: Thu, 07 Nov 2024 03:30:50 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:30:52.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "8f57d0a690407837a6e100808c5990d8",
               "headermmh3" : 186569716,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 406
         },
         "asn" : "AS15704",
         "city" : "Terrassa",
         "country" : "ES",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: puta_el_que_lo_lea\r\nDate: Thu, 07 Nov 2024 03:30:50 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "52dd2a8da27f85010960b413cbcb06b2",
         "datammh3" : 237437428,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS15704",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "ES",
            "countryname" : "Spain",
            "domain" : [
               "masmovil.com"
            ],
            "isineu" : "true",
            "latitude" : "40.463667",
            "location" : "40.463667,-3.74922",
            "longitude" : "-3.74922",
            "netname" : "ES-MUNDITELECOM-20080319",
            "organization" : "XTRA TELECOM S.A.",
            "subnet" : "93.176.128.0/18"
         },
         "ip" : "93.176.175.64",
         "ipv6" : "false",
         "latitude" : "41.5655",
         "location" : "41.5655,2.0184",
         "longitude" : "2.0184",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Xtra Telecom S.A.",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5001,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "93.176.128.0/18",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 108.76.190.132:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:52 UTC

    • IP
      108.76.190.132
      Network
      108.76.0.0/15
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://108.76.190.132:5001/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      ASN
      AS7018
      Organization
      ATT-INTERNET4
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Thu, 07 Nov 2024 03:30:39 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:30:52.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : -1396157209,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS7018",
         "city" : "El Dorado Hills",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:30:39 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS7018",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "att.com",
               "att.net"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "SBCIS-SBIS",
            "organization" : "AT&T Corp.",
            "subnet" : "108.76.0.0/15"
         },
         "ip" : "108.76.190.132",
         "ipv6" : "false",
         "latitude" : "38.6841",
         "location" : "38.6841,-121.0676",
         "longitude" : "-121.0676",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "ATT-INTERNET4",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5001,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "108.76.0.0/15",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 1.165.175.110:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:52 UTC

    • IP
      1.165.175.110
      Network
      1.160.0.0/12
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://1.165.175.110:5001/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      ASN
      AS3462
      Organization
      Data Communication Business Group
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Thu, 07 Nov 2024 03:30:50 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:30:52.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : 1880998821,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS3462",
         "city" : "Taichung",
         "country" : "TW",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:30:50 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS3462",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "TW",
            "countryname" : "Taiwan",
            "domain" : [
               "hinet.net",
               "twnic.net",
               "twnic.net.tw"
            ],
            "isineu" : "false",
            "latitude" : "23.69781",
            "location" : "23.69781,120.960515",
            "longitude" : "120.960515",
            "netname" : "HINET-NET",
            "organization" : "Data Communication Business Group",
            "subnet" : "1.160.0.0/13"
         },
         "ip" : "1.165.175.110",
         "ipv6" : "false",
         "latitude" : "24.1440",
         "location" : "24.1440,120.6844",
         "longitude" : "120.6844",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Data Communication Business Group",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5001,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "1.160.0.0/12",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }